Brute forcing Buckets on Amazon S3. Two computers, one mouse with Synergy, a Crack the Code Challenge walkthrough with archive and PDF cracking all a lot more, this time on Hak5.

Download HD Download MP4 Download WMV

Hacker Headlines

LulzSec has just opened up a Hack Request Line, enabling people to give them a ring and ask for them to hack certain sites. The group’s phone number is a 614 USA area code that they posted on their twitter feed. They say they have already sent DDOS attacks to eight of the sites callers have requested with more to follow. But, of course, this is all just for the Lulz.

Random Hacks of Kindness just occurred on June 4th and 5th. It’s a globally linked conference that brings together hackers from 18 cities around the world to discuss problems in the world that could have technological solutions. Seems like an awesome idea, and I wish I could have made it this year!

If you’ve ever had the inkling to flash an Arduino using a ZipIt Z2, now there’s a way! Check out the video from Hack A Day.

Crack the Code Challenge

Did you have what it took to compete in our Crack The Code Challenge, brought to you by GoToAssist Express? These Hak5 viewers did last Sunday. Mad props go to: JudaZuk, CanadianTaco, Bas, ThisDB, adrianke, Fredrik, Mike, Edmund, Adammw111 and Julian who were the first 10 to complete the challenge.

A big thanks go out to all that participated, joined the live stream and chat, and of course GoToAssist Express for sponsoring our Hak5 Lab Network. Stay tuned for info on the next, even bigger Crack the Code Challenge.

Brute Forcing Amazon S3 Buckets

Darren demonstrates Robin Wood‘s bucket finder tool, talks about brute force theory and goes over Robin’s recent analysis.

Two Computers one Mouse with Synerygy

The definition of Synergy is basically taking two or more things and making them function together to produce an outcome that is greater than just the things by themselves. The handy tool called Synergy does just that. Here at our Hak5 office, I use two different computers. I bring in my laptop for social networking, catching up with emails, and writing shownotes; and I also use another laptop to work on the HakShop, print labels, and fulfill orders. I have two mice, one for each machine, and if I had a dime for every time I grabbed the wrong mouse when I’m switching between the two laptops, I’d be a millionaire.

Enter Synergy, the free and open source software that lets you share your mouse and keyboard between several different computers, where each computer has it’s own display. You don’t need any hardware addons or special mods, all you need is a local area network- a connection to the internets shared by those differennt computers. But what if you have different operating systems on those machines? Luckily, Windoes, Mac, and Linux are all supported. Sharing the computers is as easy as just moving your mouse from one monitor to another, also enabling you to use multiple monitors for your single computers as normal, and you can copy and paste between the seperate machines.
Synergy was first created years ago but wasn’t being updated after 2006, so we have a merging of Synergy and Synergy+, now bringing us updates and new OS compatibility.

to download Synergy, go to synergy-foss.org and click the download tab, then choose your operating system for the main computer. Go through the install process like normal and open the program. On the main window, check server, which means you will share this computers keyboard and mouse. Now, click on Configure server. From here you can drag and drop your main computers monitor to a desired box in the grid. This gives you a nice structured view of where each of your computers will be in real time. So, since my main computer will be to the left of my second laptop, I’ll put my main computer here. In the next tab, you can enable hotkeys if wanted, and choose advanced settings. Also, keep in mind your ‘server’s’ name, mine is Snubs-PC. This will be the keyboard and mouse that you’ll want to connect your other computers to as clients.

Now I’m going to connect my second laptop to this main one’s keyboard and mouse, and hopefully all goes well!

I’ve installed Synergy on my second computer. To install it on a second computer, AKA a client, just follow the same steps as before. This time, when you open the program, you’ll need to check Client, and type in the name of your original main computer, for me it’s Snubs-PC. Go into edit–>settings and look up your laptops name, mine is Hakshop. Now on your server computer, choose Server Configuration, and drag a new monitor to the screen. Name this one Hakshop by double clicking on the monitor. Now that you have both computers set up, click start synergy on both of them. If all works fine and they are both connected via the same local area connection – ethernet or wireless – you should be able to move your mouse from one monitor to the other PC’s monitor.

Easy! And totally cool. I literally had a ‘Whoa’ moment when I had my laptop on the other side of the room and was able to use my mouse to control it.

If you like Synergy or have a program like this, email me at feedback@hak5.org.

If you’re into Hak5 you’ll love our new show by hosts Darren Kitchen and Shannon Morse. Check out HakTip!

Whether you’re a beginner or a pro, HakTip is essential viewing for current and aspiring hackers, computer enthusiasts, and IT professionals. With a how-to approach to all things Information Technology, HakTip breaks down the core concepts, tools, and techniques of Linux, Wireless Networks, Systems Administration, and more

And let’s not forget to mention that you can follow us on Twitter and Facebook, Subscribe to the show and get all your Hak5 goodies, including the infamous WiFi Pineapple over at HakShop.com. If you have any questions or suggestions please feel free to contact us at feedback@hak5.org.

Join modding wizard Ben Heck and friends as they build and modify a host of amazing community-inspired creations. Be sure to watch the most recent episode of The Ben Heck Show where Ben builds an Arduino-powered, exterior-mounted camera system for an off-road vehicle. The setup enables the driver to control the cameras from inside the cabin to get a better view of obstacles while driving on rugged, off-road terrain. This show about building, modding and electronics culture is brought to you exclusively by element14. Be sure to visit element14.com/tbhs for a chance to win one of Ben’s latest builds!

I’m here to tell you about a tool that will help you save time and money and make you look like a hero to clients or colleagues GoToAssist Express – by Citrix. Lets you easily resolve computer issues in real time OR after hours. Even work while your customers are away from their computers, dramatically boosting your productivity. In fact, on average, Go To Assist Express users report a 40% increase in productivity – that’s like getting 2 extra work days back a week! Try GoToAssist Express FREE for 30 Days. For this special offer visit
GoToAssist.com/hak5.

.TV is the best domain name for websites with video. If you want to build a video site or if your website has a play button, I recommend getting a .TV domain. A .TV website lets you showcase your original content and create a unique site, not just another YouTube channel. Just go to Domain.com and search for the perfect .TV domain for your new idea. Then use coupon code Hak5 at checkout to save an extra 15%. If you need to host your .TV website, don’t forget about Domain.com’s web hosting plans. They’re less than six bucks a month and have everything you need to build, maintain, and promote your site. Remember – when you think domain names, think Domain dot com. Got a great idea? It all starts with a great domain. Domain.com

Leave a Reply

Your email address will not be published. Required fields are marked *

*

11 Comments

  • dustyhair 4 years ago

    In regards to the viewer mail question about the wall mount case mod, its worth noting that a lot of the higher end newer motherboards have power and reset switches built in to the motherboard along with hex code error displays.

  • Didn’t we cover Synergy like season 1 or 2? Personally, I would move all the machines you need to VM’s in a closet or server rack, and then RDP into the ones you need to work on. Why clutter the desk, even with just two laptops, when you can have one console to access all of them over the network. RDP, or VNC, whatever you like. Hell, GotoAssist even.

    As for the brute forcing of Amazon, another trick is to trust in google to have found most of these for you.

    Try this google dork:
    site:amazonaws.com inurl:”.s3.amazonaws.com/”

  • Why are you guys continuously tapping that iPhone?

    Love the show!

    Henrik

  • AndiC 4 years ago

    Blimey I have’nt used Synergy in a while it now has a GUI!

  • Well i tried to download a wordlist from thepacketstormsecurity.org site, and i don’t get it. When i download the .gz file, extract it and try to open it in a text editor. Then it opens what looks like a website, with hyperlinks to different sites and so on. Whats the idea in this? And where is the wordlist?

    Kind regards.

    • Are you sure you downloaded the correct file? A text file shouldn’t launch a website, so curious which file you downloaded.

      I just downloaded one from packetstormsecurity.org/Crackers/wordlists/ and it opened fine.

  • Seuros 4 years ago

    Darren ? Are you high ?
    PCMCIA EXPRESS on that thinkpad ? What about the SSD HD and Touch Screen ? Lulz

  • It turns out one of my (private) S3 buckets is on that name list. Now I’m seeing “AccessDenied” errors in my bucket logs. If you’re running that script, I’m watching you! 😉

    Here’s the people who’ve tried over the last few days:


    cpe-72-185-138-140.tampabay.res.rr.com.
    70-88-106-173-salvation-army-mi.hfc.comcastbusiness.net.
    206-176-190-190.cab.prima.net.ar.
    rrcs-69-193-69-13.nys.biz.rr.com.
    blk-138-65-105.eastlink.ca.
    125-236-210-203.adsl.xtra.co.nz.
    p57A05DC8.dip.t-dialin.net.

  • Seems to me that the bucket_finder.rb could be faster if it was threadpool’d.

    Like this, maybe?
    https://gist.github.com/1050332

    (requires: gem install work_queue)

  • I like this blog, thank you for share!!

  • I have been exploring for a little bit for any high-quality articles or weblog
    posts on this sort of area . Exploring in Yahoo I ultimately
    stumbled upon this web site. Studying this info So i’m glad to
    convey that I have an incredibly just right
    uncanny feeling I found out just what I needed. I so much certainly will make certain to don?t fail to remember this
    web site and give it a glance regularly.

  • Nice post. I was checking continuously this weblog and I’m inspired!
    Very useful information particularly the final section :) I take care of such
    info much. I used to be looking for this particular information for a very lengthy time.
    Thank you and best of luck.

  • Hey there, I think your site might be having browser compatibility issues.
    When I look at your blog in Chrome, it looks fine but when opening in Internet
    Explorer, it has some overlapping. I just wanted to give you a
    quick heads up! Other then that, terrific blog!

  • I am genuinely glad to read this web site posts which includes tons off useful information, thanks for providing these
    kinds of data.

  • Este cel mai documentat text despre Hak5 918 – Brute forcing Amazon S3 Buckets, archives
    and PDFs plus Synergy!. Bravo!

  • In 2014, Manmin members smiled and laughed a lot, and sometimes shed lots of
    tears because they realized how the shepherd had sacrificed himself for them.

    Bless and power of God in abundance. Visit http://www.manminnews.com/
    Second Coming of Jesus Christ is in a short time.

  • perfectvpshosting.com is offering at the summer sale cheap
    dedicated servers starting at 90$ / month. all servers
    are dula quad core xeon servers , starting from 32 gb ddr3 ecc memory , 240 gb ssd
    drives till 1 tb ssd drive, 1gbps connection and great support

  • The trade group’s study includes greater than 45 million loans, tens of millions of more than the government report buy viagra sydney Australia a pending lawsuit loan is an advance against in a situation that hasn’t yet settled.

  • Hey! Do you know if they make any plugins to safeguard against
    hackers? I’m kinda paranoid about losing everything I’ve workd hard on. Any recommendations?

  • In 2014, Manmin members smiled and laughed a lot, and sometimes shed lots of tears because
    they realized how the shepherd had sacrificed himself for them.

    Bless and power of God in abundance. Visit http://www.manminnews.com/
    Second Coming of Jesus Christ is in a short time.

  • Hi, I do think this is a great site. I stumbledupon it 😉 I will
    revisit once aagain since I book marked it.
    Money and freedom is the greatest way to change, may you bee rich and continue to guide others.

  • Your credit standing will prove insurmountable
    in most cases, but the truth is you can find still less known private lenders that supply loan offers no credit
    instruments to folks inside your situation Sherrell Kolen much just like the gambling industry, partnering might be very theraputic for all parties.

  • Hi in that respect there. My name is Mickie Wyse. What her family and
    her love is shared there . comics but she’s thinking on starting something recent.
    Arkansas is where he and his awesome wife experience. Debt collecting is
    how she makes money. Check out his website here: pandora birthstone rings

  • Very good site you have here but I was wondering if you knew of any message boards that
    cover the same topics talked about in this article? I’d really love to be a part of group where I can get suggestions from other knowledgeable
    people that share the same interest. If you have any suggestions,
    please let me know. Thanks!

  • All you wish to try and do 1st so as to use this hack program is get the hack archive
    from one in all the transfer links below.

  • Hello I am so happy I found your blog page, I really found you
    by error, wile I was browsing on Askjeeve for something else, Anyways I am here now and would just like to say thanks a lot
    for a incredible post and a all round enjoyable blog (I also
    love the theme/design), I don’t have time to read it
    all at the minute but I have bookmarked it and also
    included your RSS feeds, so when I have time I will be back to read a
    great deal more, Please do keep up the excellent work.